Re: [Ace] I-D Action: draft-ietf-ace-cwt-proof-of-possession-10.txt

Mike Jones <Michael.Jones@microsoft.com> Thu, 31 October 2019 00:53 UTC

Return-Path: <Michael.Jones@microsoft.com>
X-Original-To: ace@ietfa.amsl.com
Delivered-To: ace@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 08896120086; Wed, 30 Oct 2019 17:53:13 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIMWL_WL_HIGH=-0.001, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=microsoft.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Z7SSWPEFpPoz; Wed, 30 Oct 2019 17:53:10 -0700 (PDT)
Received: from NAM06-BL2-obe.outbound.protection.outlook.com (mail-eopbgr650107.outbound.protection.outlook.com [40.107.65.107]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 8B9FD12006B; Wed, 30 Oct 2019 17:53:10 -0700 (PDT)
ARC-Seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=E2BzKE2wCacrnP9HI5TUVrZGEd8dP+ELpInfhDujVHL7oM2t9+Y7H5wZRm6GRRlUZOPaaFNuG25vJp5W4aKezZbyucAhpD/hqbQGIdRzX30kwvlsRt0Dhl8zse5u1gm2+qTePLHBBm2D1QIOkyNuG8gq4q/rVdaeyOAP78JW7KNlD6FucuZy9h2Jo3YgbdQ2ItFmVrYNdZ8v8Xv6bW4Jpz+der63QzLzUeVi+Ac4V/qrUPuwabjnwDz3A4IWzhapgl7soNDxNnhQJXm/Zp8fpruPr6CNKuiLrnR3M+2Iyd2LAdJJ3oMuTJTXikZnlhrYpHGSuQqXwmEsQw1Eqt3lLw==
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=U5rKWpOp/GWrVxkzKDUAGaPGZFTyu0Krq06KjX4FwGE=; b=Cqfv51xXRyjFjcl4fKXMA2j+B3GbBJKTxUgvHmxCbj6JCIGLUOHUW4bylK1QZkJMoh2pSsydHDliI8zsntjqqNnfCS7wPd7QG4Q+8Cn0EvQl0Dft3palh4LaReMj0FNw3EzH879eXcD1+01Mt8dwr3Mg+wHFHX491J/4hwxhnVSAWSn8wdmPamctQy3smbNukNlscIbCW1LCdWZyUHKMIyvvfNN8FWnSueNg0o1obIBV6ze+cRFfCtRFEp/goJUF2LBivaiUgECldF5MRl8KpyhHzorH/rEGedSF9n6wCW1AA9RwuOltAeYAuuf75gqaY8YTjwUbNMAc+wqhutnIHQ==
ARC-Authentication-Results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=microsoft.com; dmarc=pass action=none header.from=microsoft.com; dkim=pass header.d=microsoft.com; arc=none
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=U5rKWpOp/GWrVxkzKDUAGaPGZFTyu0Krq06KjX4FwGE=; b=g8oqpul1t3EO5xmphJ9jX/yyOXY7M0HhSerf23HwYeVYqNzo3/iVOlLRHSqPj0g95hbODUmd3ca7P8hrqBMz2z6Yx25Z1ZkobZ80WmA59EsLWaAxlA7egSajfNeQcTIfRqkl+ohGxXfUCfEZo4hJVu+pqxXU6EdblyqjwFFLVcs=
Received: from MN2PR00MB0574.namprd00.prod.outlook.com (20.178.255.147) by MN2PR00MB0511.namprd00.prod.outlook.com (20.178.243.13) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.2415.0; Thu, 31 Oct 2019 00:53:06 +0000
Received: from MN2PR00MB0574.namprd00.prod.outlook.com ([fe80::adbb:7ec8:334:2f7]) by MN2PR00MB0574.namprd00.prod.outlook.com ([fe80::adbb:7ec8:334:2f7%9]) with mapi id 15.20.2448.000; Thu, 31 Oct 2019 00:53:06 +0000
From: Mike Jones <Michael.Jones@microsoft.com>
To: "ace@ietf.org" <ace@ietf.org>, "i-d-announce@ietf.org" <i-d-announce@ietf.org>
CC: Adam Roach <adam@nostrum.com>, =?utf-8?B?w4lyaWMgVnluY2tl?= <evyncke@cisco.com>
Thread-Topic: [Ace] I-D Action: draft-ietf-ace-cwt-proof-of-possession-10.txt
Thread-Index: AQHVj4K4T2ydyJbjM0S0a89MIygWj6dz61CA
Date: Thu, 31 Oct 2019 00:53:06 +0000
Message-ID: <MN2PR00MB0574E9F6E7B0502C9AFE7E7FF5630@MN2PR00MB0574.namprd00.prod.outlook.com>
References: <157248195825.32490.14170581190430072021@ietfa.amsl.com>
In-Reply-To: <157248195825.32490.14170581190430072021@ietfa.amsl.com>
Accept-Language: en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
msip_labels: MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ActionId=6f3ab3f2-4b92-48d5-a3ee-00006bc92835; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_ContentBits=0; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Enabled=true; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Method=Standard; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_Name=Internal; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SetDate=2019-10-31T00:50:19Z; MSIP_Label_f42aa342-8706-4288-bd11-ebb85995028c_SiteId=72f988bf-86f1-41af-91ab-2d7cd011db47;
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Michael.Jones@microsoft.com;
x-originating-ip: [2001:4898:80e8:a:5a14:4e20:1624:50c8]
x-ms-publictraffictype: Email
x-ms-office365-filtering-ht: Tenant
x-ms-office365-filtering-correlation-id: bca35d9e-0555-497b-7af1-08d75d9cb12c
x-ms-traffictypediagnostic: MN2PR00MB0511:
x-microsoft-antispam-prvs: <MN2PR00MB05115F5594EB3451D7FA61E1F5630@MN2PR00MB0511.namprd00.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:8273;
x-forefront-prvs: 02070414A1
x-forefront-antispam-report: SFV:NSPM; SFS:(10019020)(376002)(366004)(396003)(346002)(136003)(39860400002)(199004)(189003)(13464003)(966005)(81166006)(8676002)(316002)(478600001)(81156014)(229853002)(256004)(10290500003)(446003)(66574012)(52536014)(4001150100001)(25786009)(6116002)(22452003)(8936002)(54906003)(110136005)(5660300002)(11346002)(46003)(486006)(8990500004)(74316002)(7736002)(53546011)(305945005)(71200400001)(2906002)(10090500001)(33656002)(6306002)(7696005)(476003)(76176011)(86362001)(55016002)(66946007)(6246003)(64756008)(6436002)(71190400001)(66556008)(66476007)(14454004)(2501003)(76116006)(9686003)(102836004)(186003)(4326008)(99286004)(66446008)(6506007); DIR:OUT; SFP:1102; SCL:1; SRVR:MN2PR00MB0511; H:MN2PR00MB0574.namprd00.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; A:1; MX:1;
received-spf: None (protection.outlook.com: microsoft.com does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam: BCL:0;
x-microsoft-antispam-message-info: 5ThkFgKeV57FYyuVSE5Ko5syeyxXmaAJSCnoQPe+ayExr+wbrSHGB/XAiD8NxeVCFi4DVQOJ7YB8t3CvkWW2KFlOVyKpUjdnwwCY1eSnANqghJDT9dPOrJRXFDFjvzhFsVG+YWciOqAu0g85CXdUYACco7fBvF12fNMUNU6wtB7ySTwpIDQ2ZFi4TULohxxKdFVQGqEu4HVokWhyH1Y1H7dZB70FVs/PZ5DWlBFrjGJzRAJpJnC3sltxt48KNJntMPy3Y1mvOFpZ5TqbjCqN9Ng8Sh8ZqUqqahrIcrWgjrGwoHU8QBZntL9KPjbkC4wdZjNq9W2Kv/ox96GvAmoqgk6848P7vedE3q9YF6ATw9y85HH714YR8Mm8llJovzLknJfvdC6tMad2lSFhyfn8dV5X4gyqFY8PHHIRebxMGiLP11lZYj9s1xS+I8foYeEI
x-ms-exchange-transport-forked: True
Content-Type: text/plain; charset="utf-8"
Content-Transfer-Encoding: base64
MIME-Version: 1.0
X-OriginatorOrg: microsoft.com
X-MS-Exchange-CrossTenant-Network-Message-Id: bca35d9e-0555-497b-7af1-08d75d9cb12c
X-MS-Exchange-CrossTenant-originalarrivaltime: 31 Oct 2019 00:53:06.3159 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 72f988bf-86f1-41af-91ab-2d7cd011db47
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-CrossTenant-userprincipalname: zrMWHsS0sWaQjGxBC7iArmxUtyFLalT2d07kb4R7HRXwtJtSEPlXKx5aCs8wN41qXs0jiajzMNlQWD6MwN6aCw==
X-MS-Exchange-Transport-CrossTenantHeadersStamped: MN2PR00MB0511
Archived-At: <https://mailarchive.ietf.org/arch/msg/ace/pHFPPBYC_iGmWyV-SZfGEdsbCPg>
Subject: Re: [Ace] I-D Action: draft-ietf-ace-cwt-proof-of-possession-10.txt
X-BeenThere: ace@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Authentication and Authorization for Constrained Environments \(ace\)" <ace.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/ace>, <mailto:ace-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/ace/>
List-Post: <mailto:ace@ietf.org>
List-Help: <mailto:ace-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/ace>, <mailto:ace-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 31 Oct 2019 00:53:13 -0000

This version addresses IESG comments from Adam Roach and Éric Vyncke, both of which resulted in local editorial improvements to the document.

				-- Mike

-----Original Message-----
From: Ace <ace-bounces@ietf.org>; On Behalf Of internet-drafts@ietf.org
Sent: Wednesday, October 30, 2019 5:33 PM
To: i-d-announce@ietf.org
Cc: ace@ietf.org
Subject: [Ace] I-D Action: draft-ietf-ace-cwt-proof-of-possession-10.txt


A New Internet-Draft is available from the on-line Internet-Drafts directories.
This draft is a work item of the Authentication and Authorization for Constrained Environments WG of the IETF.

        Title           : Proof-of-Possession Key Semantics for CBOR Web Tokens (CWTs)
        Authors         : Michael B. Jones
                          Ludwig Seitz
                          Göran Selander
                          Samuel Erdtman
                          Hannes Tschofenig
	Filename        : draft-ietf-ace-cwt-proof-of-possession-10.txt
	Pages           : 16
	Date            : 2019-10-30

Abstract:
   This specification describes how to declare in a CBOR Web Token (CWT)
   (which is defined by RFC 8392) that the presenter of the CWT
   possesses a particular proof-of-possession key.  Being able to prove
   possession of a key is also sometimes described as being the holder-
   of-key.  This specification provides equivalent functionality to
   "Proof-of-Possession Key Semantics for JSON Web Tokens (JWTs)" (RFC
   7800) but using Concise Binary Object Representation (CBOR) and CWTs
   rather than JavaScript Object Notation (JSON) and JSON Web Tokens
   (JWTs).


The IETF datatracker status page for this draft is:
https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fdraft-ietf-ace-cwt-proof-of-possession%2F&amp;data=02%7C01%7CMichael.Jones%40microsoft.com%7C8f8fbd0554a54a425eac08d75d99d814%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637080787671770750&amp;sdata=1DMKhvl%2BZrTderZqQO1dPMWxGvPpUBH0QakWZ7nhT%2Bw%3D&amp;reserved=0

There are also htmlized versions available at:
https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Ftools.ietf.org%2Fhtml%2Fdraft-ietf-ace-cwt-proof-of-possession-10&amp;data=02%7C01%7CMichael.Jones%40microsoft.com%7C8f8fbd0554a54a425eac08d75d99d814%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637080787671770750&amp;sdata=I%2BL3A86s5uufPp8vRfK31GNJbtJrDC3umOhxH7z5rCI%3D&amp;reserved=0
https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdatatracker.ietf.org%2Fdoc%2Fhtml%2Fdraft-ietf-ace-cwt-proof-of-possession-10&amp;data=02%7C01%7CMichael.Jones%40microsoft.com%7C8f8fbd0554a54a425eac08d75d99d814%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637080787671770750&amp;sdata=ulFodpYOpfmgwrqzuX%2Fz6mTiNSL0vrjS3rnGX5mMuU0%3D&amp;reserved=0

A diff from the previous version is available at:
https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Frfcdiff%3Furl2%3Ddraft-ietf-ace-cwt-proof-of-possession-10&amp;data=02%7C01%7CMichael.Jones%40microsoft.com%7C8f8fbd0554a54a425eac08d75d99d814%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637080787671770750&amp;sdata=cchPquPB5ZSCFJfLp91Bp2azdFz7HhttSNk0W%2BvIPic%3D&amp;reserved=0


Please note that it may take a couple of minutes from the time of submission until the htmlized version and diff are available at tools.ietf.org.

Internet-Drafts are also available by anonymous FTP at:
ftp://ftp.ietf.org/internet-drafts/

_______________________________________________
Ace mailing list
Ace@ietf.org
https://nam06.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.ietf.org%2Fmailman%2Flistinfo%2Face&amp;data=02%7C01%7CMichael.Jones%40microsoft.com%7C8f8fbd0554a54a425eac08d75d99d814%7C72f988bf86f141af91ab2d7cd011db47%7C1%7C0%7C637080787671770750&amp;sdata=TaKbHEKFGIXDUdMrJoceYzSO4wsWDCVisMdWqQHZfUA%3D&amp;reserved=0